//$URL: http://deveth0.googlecode.com/svn/trunk/demos/jersey-springsecurity/src/main/java/de/deveth0/demos/jerseyspringsecurity/security/UserSecurityContext.java $
//$Id: UserSecurityContext.java 2 2012-10-23 18:30:23Z amuthmann@gmail.com $
/*
 * Copyright 2012 deveth0.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package de.deveth0.demos.jerseyspringsecurity.security;

import de.deveth0.demos.jerseyspringsecurity.data.User;
import java.security.Principal;
import javax.ws.rs.WebApplicationException;
import javax.ws.rs.core.Response;
import javax.ws.rs.core.SecurityContext;

/**
 * @author "Animesh Kumar <animesh@strumsoft.com>"
 *
 */
public class UserSecurityContext implements javax.ws.rs.core.SecurityContext {

  private final User user;

  public UserSecurityContext(User user) {
    this.user = user;
  }

  @Override
  public String getAuthenticationScheme() {
    return SecurityContext.BASIC_AUTH;
  }

  @Override
  public Principal getUserPrincipal() {
    return user;
  }

  @Override
  public boolean isSecure() {
    return user != null;
  }

  @Override
  public boolean isUserInRole(String role) {

    if (user == null) {
      // Forbidden
      Response denied = Response.status(Response.Status.FORBIDDEN).entity("Permission Denied").build();
      throw new WebApplicationException(denied);
    }

    try {
      // this user has this role?
      return user.getRoles().contains(User.Role.valueOf(role));
    } catch (Exception e) {
    }

    return false;
  }
}